Commit Graph

68 Commits (0a907bb664c2700bc7845f2e3523519c60edc244)

Author SHA1 Message Date
Alexandre Dulaunoy 0a907bb664
fix: [crawler] sigma: Yaml parser function call updated 2023-02-04 10:19:06 +01:00
Alexandre Dulaunoy 1e001cfd55
chg: [etc] new default kvrocks configuration 2023-02-04 10:09:22 +01:00
Alexandre Dulaunoy 608610f5ac
fix: [kvrocks] installer - update to the new kvrocks repository 2023-02-04 10:08:03 +01:00
Alexandre Dulaunoy 355bce7b42
new: [image] screenshot added 2021-06-01 12:30:41 +02:00
Alexandre Dulaunoy 5a043eb544
chg: [doc] screenshot because you know 2021-06-01 12:29:51 +02:00
Alexandre Dulaunoy 809b5dd542
chg: [doc] updated 2021-06-01 12:27:21 +02:00
Alexandre Dulaunoy 6944a40980
chg: [doc] some more examples 2021-06-01 12:22:26 +02:00
Alexandre Dulaunoy daa4ae1436
chg: [doc] Sample usage 2021-06-01 12:05:59 +02:00
Alexandre Dulaunoy 0a3695c5d5
chg: [crawler] misp galaxy more default import 2021-06-01 11:10:50 +02:00
Alexandre Dulaunoy 7dc5691ebc
chg: [crawler/misp-galaxy] add link and crawler import 2021-06-01 08:43:43 +02:00
Alexandre Dulaunoy 7b23cbd211
fix: [server] print leftover removed 2021-05-31 23:11:58 +02:00
Alexandre Dulaunoy 3408a726d7
chg: [server] release 0.9 2021-05-31 23:00:27 +02:00
Alexandre Dulaunoy 285ed78f29
new: [crawler] misp-galaxy crawler added 2021-05-31 22:58:04 +02:00
Alexandre Dulaunoy 44d2176a23
add: [api/backend] new full-text indexer
First version using Python whoosh (maybe not optimal on the long run)

The indexer is running by enumerating the item(s) from the CyCAT backend.
2021-05-31 11:40:08 +02:00
Alexandre Dulaunoy 5e0df4b667
Merge branch 'main' of github.com:CyCat-project/cycat-service into main 2021-05-30 17:22:58 +02:00
Alexandre Dulaunoy 7107f549db
new: [crawler] MISP feed importer into CyCAT including misp-tag and mitre-attack-id 2021-05-30 17:22:12 +02:00
Alexandre Dulaunoy 3455f69e71
Add reserved keywords for the field in the netadata hash table 2021-05-30 15:48:08 +02:00
Alexandre Dulaunoy fe054eba18
chg: [api] add a basic /propose endpoint to gather proposal 2021-05-29 23:15:33 +02:00
Alexandre Dulaunoy b4ee28b11c
chg: [api] include description of the API endpoints 2021-05-29 22:35:07 +02:00
Alexandre Dulaunoy d41d66f906
chg: [doc] OpenAPI reference added 2021-05-29 22:13:57 +02:00
Alexandre Dulaunoy 87ff592ca2
chg: [README] updated 2021-05-29 22:08:35 +02:00
Alexandre Dulaunoy d2a8238f4b
add: [license] AGPLv3 2021-05-29 22:06:58 +02:00
Alexandre Dulaunoy e138ab8b15
chg: [doc] README added 2021-05-29 22:01:26 +02:00
Alexandre Dulaunoy 8583f4c0be
new: [doc] MITRE CTI README added 2021-05-29 18:40:33 +02:00
Alexandre Dulaunoy aac9136f86
fix: [bin] unused code removed 2021-05-29 18:37:45 +02:00
Alexandre Dulaunoy e9ea4cb1c0
fix: [import] trailing slash 2021-05-29 18:37:04 +02:00
Alexandre Dulaunoy bd13c3f834
new: [sigma importer] import supported sigma rules in CyCAT
ATT&CK id are extracted from tags
2021-05-29 18:27:56 +02:00
Alexandre Dulaunoy 513ad99b93
new: [api] namespace API access added
You can do queries like:

- http://127.0.0.1:5000/namespace/finduuid/mitre-attack-id/T1589.003

and also list the known namespaces of the CyCAT instance.

curl -X 'GET' \
  'http://127.0.0.1:5000/namespace/getall' \
    -H 'accept: application/json'

and get

[
  "capec",
  "mitre-attack-id"
]
2021-05-29 16:24:30 +02:00
Alexandre Dulaunoy db0c41a2a0
chg: [github] add sigma to be imported 2021-05-29 11:44:07 +02:00
Alexandre Dulaunoy e84dcd98f1
new: [backend] add reference to namespace id towards UUID
Such as CAPEC, MITRE-ATTACK-ID and what ever you like.

Data structure updated and MITRE ATT&CK crawler support
2021-05-29 11:38:41 +02:00
Alexandre Dulaunoy 9ca7ea613f
new: [mitre-cti] sample importer script added 2021-05-28 08:54:13 +02:00
Alexandre Dulaunoy 394d60666a
new: [MITRE CTI] first version of the CTI crawler 2021-05-27 12:49:34 +02:00
Alexandre Dulaunoy f5025be32f
new: [api] relationships API endpoint added 2021-05-27 12:37:31 +02:00
Alexandre Dulaunoy 43822d5134
chg: [stats] item fixed 2021-05-27 12:14:28 +02:00
Alexandre Dulaunoy 989632ab98
add: [stats] item statistics 2021-05-27 12:12:45 +02:00
Alexandre Dulaunoy e14ba03145
chg: [server] added missing type (3) - Item 2021-05-27 11:06:17 +02:00
Alexandre Dulaunoy 87babe05f1
fix: [api] /lookup fix if a UUID is allocated without data 2021-05-27 10:38:07 +02:00
Alexandre Dulaunoy 8fd415134a
chg: [data-structure] relationship model added 2021-05-27 08:19:27 +02:00
Alexandre Dulaunoy afde6eb55f
new: [GitHub] import org, user and repos as organisation and project in CyCAT.org 2021-05-25 11:13:48 +02:00
Alexandre Dulaunoy b9fc0114c7
fix: [api] default start/end for publisher and project fixed 2021-05-25 10:32:15 +02:00
Alexandre Dulaunoy 3bb400c585
chg: [initial_importer] OID fixed 2021-05-25 09:55:10 +02:00
Alexandre Dulaunoy 77b1fb1ed4
chg: [dataset] cycat OID is now the node_id UUIDv5 of GitHub 2021-05-25 09:54:15 +02:00
Alexandre Dulaunoy 22acf46d28
chg: [dataset] set default cycat oid generated from GitHub node_id 2021-05-25 09:45:19 +02:00
Alexandre Dulaunoy cd56b2b358
new: [doc] list fixed UUID used for UUIDv5 generation 2021-05-25 09:37:29 +02:00
Alexandre Dulaunoy a180bc8ff0
chg: [server] 0.2 version 2021-05-24 17:54:03 +02:00
Alexandre Dulaunoy 57212a871a
new: [initial_import] script added 2021-05-24 17:50:30 +02:00
Alexandre Dulaunoy d4ec2dc8eb
new: [api] /child and /parent API endpoints added 2021-05-24 17:49:23 +02:00
Alexandre Dulaunoy 1b31fe8504
chg: [server] return CyCAT object type in JSON output 2021-05-24 17:07:43 +02:00
Alexandre Dulaunoy 52dd1c4a67
chg: [importer] parent option added - to reference an parent CyCAT OID 2021-05-24 17:04:03 +02:00
Alexandre Dulaunoy c2bb0c4989
chg: [data structure] new parent and child prefix in Redis for describing publishing relationship 2021-05-24 16:41:13 +02:00